Apr 2026 – Present · 1 mo

• Leading Cyber Defense Monitoring, Incident Response, Cyber Content & Automation, Threat Intelligence, Insider Risk, and Cyber Resilience, bringing these capabilities together into an integrated, intelligence driven Cyber Defense Fusion Center to improve detection, response, and enterprise risk management.

Jun 2021 – Present · 4 yrs 11 mos

• In this pivotal leadership role, I lead the enterprise's Cyber Defense Operations vision, strategy, and initiatives to protect critical information assets and technology infrastructure. My promotion was earned through exceptional leadership in program development and regulatory compliance, where I now oversee four teams and 35 professionals spanning the U.S., India, and the UK. I direct cybersecurity operations, including incident response and threat monitoring. My primary focus is safeguarding the organization against both emerging and known cyber threats, ensuring business continuity with minimal disruption.
• ➥Delivered strategic IT security risk insights, aligning security policies with business goals through collaboration with IT leadership.
• ➥Advanced the cyber defense program to NIST maturity level 4, with a strategic roadmap toward level 5, leveraging innovative threat detection, optimizing incident response, and driving continuous improvement to strengthen security posture.
• ➥Developed a comprehensive threat modeling initiative, utilizing advanced cybersecurity technologies to assess risks.
• ➥Conducted a thorough Business Impact Analysis (BIA), identifying and addressing Single Points of Failure (SPOF) with system redundancies and cross-training, significantly boosting organizational resilience.
• ➥Strengthened detection and response capabilities by enhancing purple teaming exercises and conducting continuous red team simulations to prepare for sophisticated cyber threats.
• ➥Established and enforced comprehensive security policies and procedures aligned with industry standards, including their approval, dissemination, and training to ensure compliance in a constantly evolving threat landscape.
• ➥Directed cybersecurity operations in adherence to regulations from the Commodity Futures Trading Commission (CFTC), Securities and Exchange Commission (SEC), SOC2, GDPR, and ISO 27001, driving remediation for certifications and internal audits.

Nov 2019 – Jun 2021 · 1 yr 7 mos

• Created the strategy and executed the program from scratch while managing analysts and senior security engineers, including shifting from a manual to an automated SOC that reduced the time for identification, containment, and eradication of attacks.
• Highlights of accomplishments in this role include:
• ➥Strengthened detection/response capabilities by optimizing processes and maintaining accuracy in mitigating threats through the elimination of routine tasks.
• ➥Optimized threat detection/incident response and brought a remarkable 76% decrease in Mean Time To Contain (MTTC) by spearheading the implementation of a state-of-the-art Security Orchestration, Automation, and Response (SOAR) solution.
• ➥Aided the Cyber Defense monitoring and incident response teams in neutralizing cyber threats by driving the design and implementation of system integrations and automation processes.

Apr 2016 – Nov 2019 · 3 yrs 7 mos

• I developed and implemented a Cyber Defense Resiliency program tailored to the organization’s specific threat landscape. I managed inquiries from government regulators and internal auditors regarding cybersecurity operations. Additionally, I created and facilitated advanced cyber exercises to enhance organizational preparedness.
• ➥Led the formulation of cybersecurity policies, procedures, and controls.
• ➥Coordinated external penetration testing efforts and crafted targeted remediation strategies to effectively address identified vulnerabilities.
• ➥Established comprehensive cybersecurity policies aligned with industry standards, including NIST and ISO 27001.
• ➥Launched a Cyber Security Wargaming program, creating intricate exercise scenarios and managing logistics with over 10 contractors to ensure smooth execution.
• ➥Developed and maintained a robust Cyber Incident Response Plan (CIRP), ensuring effective coordination and decision-making during incidents that impact business operations.